version 1.248, 2004/09/03 10:13:59
|
version 1.253, 2004/09/14 09:30:07
|
Line 331 sub InsecureConnection {
|
Line 331 sub InsecureConnection {
|
|
|
|
|
} |
} |
|
|
# |
# |
|
# Safely execute a command (as long as it's not a shel command and doesn |
|
# not require/rely on shell escapes. The function operates by doing a |
|
# a pipe based fork and capturing stdout and stderr from the pipe. |
|
# |
|
# Formal Parameters: |
|
# $line - A line of text to be executed as a command. |
|
# Returns: |
|
# The output from that command. If the output is multiline the caller |
|
# must know how to split up the output. |
|
# |
|
# |
|
sub execute_command { |
|
my ($line) = @_; |
|
my @words = split(/\s/, $line); # Bust the command up into words. |
|
my $output = ""; |
|
|
|
my $pid = open(CHILD, "-|"); |
|
|
|
if($pid) { # Parent process |
|
Debug("In parent process for execute_command"); |
|
my @data = <CHILD>; # Read the child's outupt... |
|
close CHILD; |
|
foreach my $output_line (@data) { |
|
Debug("Adding $output_line"); |
|
$output .= $output_line; # Presumably has a \n on it. |
|
} |
|
|
|
} else { # Child process |
|
close (STDERR); |
|
open (STDERR, ">&STDOUT");# Combine stderr, and stdout... |
|
exec(@words); # won't return. |
|
} |
|
return $output; |
|
} |
|
|
|
|
# GetCertificate: Given a transaction that requires a certificate, |
# GetCertificate: Given a transaction that requires a certificate, |
# this function will extract the certificate from the transaction |
# this function will extract the certificate from the transaction |
# request. Note that at this point, the only concept of a certificate |
# request. Note that at this point, the only concept of a certificate |
Line 1013 sub tie_user_hash {
|
Line 1048 sub tie_user_hash {
|
$how, 0640)) { |
$how, 0640)) { |
# If this is a namespace for which a history is kept, |
# If this is a namespace for which a history is kept, |
# make the history log entry: |
# make the history log entry: |
if (($namespace =~/^nohist\_/) && (defined($loghead))) { |
if (($namespace !~/^nohist\_/) && (defined($loghead))) { |
my $args = scalar @_; |
my $args = scalar @_; |
Debug(" Opening history: $namespace $args"); |
Debug(" Opening history: $namespace $args"); |
my $hfh = IO::File->new(">>$proname/$namespace.hist"); |
my $hfh = IO::File->new(">>$proname/$namespace.hist"); |
Line 1302 sub push_file_handler {
|
Line 1337 sub push_file_handler {
|
|
|
sub du_handler { |
sub du_handler { |
my ($cmd, $ududir, $client) = @_; |
my ($cmd, $ududir, $client) = @_; |
|
my ($ududir) = split(/:/,$ududir); # Make 'telnet' testing easier. |
|
my $userinput = "$cmd:$ududir"; |
|
|
if ($ududir=~/\.\./ || $ududir!~m|^/home/httpd/|) { |
if ($ududir=~/\.\./ || $ududir!~m|^/home/httpd/|) { |
&Failure($client,"refused\n","$cmd:$ududir"); |
&Failure($client,"refused\n","$cmd:$ududir"); |
return 1; |
return 1; |
} |
} |
my $duout = `du -ks $ududir 2>/dev/null`; |
# Since $ududir could have some nasties in it, |
$duout=~s/[^\d]//g; #preserve only the numbers |
# we will require that ududir is a valid |
&Reply($client,"$duout\n","$cmd:$ududir"); |
# directory. Just in case someone tries to |
|
# slip us a line like .;(cd /home/httpd rm -rf*) |
|
# etc. |
|
# |
|
if (-d $ududir) { |
|
# And as Shakespeare would say to make |
|
# assurance double sure, |
|
# use execute_command to ensure that the command is not executed in |
|
# a shell that can screw us up. |
|
|
|
my $duout = execute_command("du -ks $ududir"); |
|
$duout=~s/[^\d]//g; #preserve only the numbers |
|
&Reply($client,"$duout\n","$cmd:$ududir"); |
|
} else { |
|
|
|
&Failure($client, "bad_directory:$ududir\n","$cmd:$ududir"); |
|
|
|
} |
return 1; |
return 1; |
} |
} |
®ister_handler("du", \&du_handler, 0, 1, 0); |
®ister_handler("du", \&du_handler, 0, 1, 0); |
Line 1370 sub ls_handler {
|
Line 1425 sub ls_handler {
|
$ulsout='no_such_dir'; |
$ulsout='no_such_dir'; |
} |
} |
if ($ulsout eq '') { $ulsout='empty'; } |
if ($ulsout eq '') { $ulsout='empty'; } |
print $client "$ulsout\n"; |
&Reply($client, "$ulsout\n", $userinput); # This supports debug logging. |
|
|
return 1; |
return 1; |
|
|
Line 1712 sub change_authentication_handler {
|
Line 1767 sub change_authentication_handler {
|
my $result=&make_passwd_file($uname, $umode,$npass,$passfilename); |
my $result=&make_passwd_file($uname, $umode,$npass,$passfilename); |
&Reply($client, $result, $userinput); |
&Reply($client, $result, $userinput); |
} else { |
} else { |
&Failure($client, "non_authorized", $userinput); # Fail the user now. |
&Failure($client, "non_authorized\n", $userinput); # Fail the user now. |
} |
} |
} |
} |
return 1; |
return 1; |
Line 1939 sub remove_user_file_handler {
|
Line 1994 sub remove_user_file_handler {
|
if (-e $udir) { |
if (-e $udir) { |
my $file=$udir.'/userfiles/'.$ufile; |
my $file=$udir.'/userfiles/'.$ufile; |
if (-e $file) { |
if (-e $file) { |
|
# |
|
# If the file is a regular file unlink is fine... |
|
# However it's possible the client wants a dir. |
|
# removed, in which case rmdir is more approprate: |
|
# |
if (-f $file){ |
if (-f $file){ |
unlink($file); |
unlink($file); |
} elsif(-d $file) { |
} elsif(-d $file) { |
rmdir($file); |
rmdir($file); |
} |
} |
if (-e $file) { |
if (-e $file) { |
|
# File is still there after we deleted it ?!? |
|
|
&Failure($client, "failed\n", "$cmd:$tail"); |
&Failure($client, "failed\n", "$cmd:$tail"); |
} else { |
} else { |
&Reply($client, "ok\n", "$cmd:$tail"); |
&Reply($client, "ok\n", "$cmd:$tail"); |
Line 2063 sub token_auth_user_file_handler {
|
Line 2125 sub token_auth_user_file_handler {
|
my ($fname, $session) = split(/:/, $tail); |
my ($fname, $session) = split(/:/, $tail); |
|
|
chomp($session); |
chomp($session); |
my $reply='non_auth'; |
my $reply="non_auth\n"; |
if (open(ENVIN,$perlvar{'lonIDsDir'}.'/'. |
if (open(ENVIN,$perlvar{'lonIDsDir'}.'/'. |
$session.'.id')) { |
$session.'.id')) { |
while (my $line=<ENVIN>) { |
while (my $line=<ENVIN>) { |
if ($line=~ m|userfile\.\Q$fname\E\=|) { $reply='ok'; } |
if ($line=~ m|userfile\.\Q$fname\E\=|) { $reply="ok\n"; } |
} |
} |
close(ENVIN); |
close(ENVIN); |
&Reply($client, $reply); |
&Reply($client, $reply, "$cmd:$tail"); |
} else { |
} else { |
&Failure($client, "invalid_token\n", "$cmd:$tail"); |
&Failure($client, "invalid_token\n", "$cmd:$tail"); |
} |
} |
Line 3069 sub put_course_id_handler {
|
Line 3131 sub put_course_id_handler {
|
my $hashref = &tie_domain_hash($udom, "nohist_courseids", &GDBM_WRCREAT()); |
my $hashref = &tie_domain_hash($udom, "nohist_courseids", &GDBM_WRCREAT()); |
if ($hashref) { |
if ($hashref) { |
foreach my $pair (@pairs) { |
foreach my $pair (@pairs) { |
my ($key,$value)=split(/=/,$pair); |
my ($key,$descr,$inst_code)=split(/=/,$pair); |
$hashref->{$key}=$value.':'.$now; |
$hashref->{$key}=$descr.':'.$inst_code.':'.$now; |
} |
} |
if (untie(%$hashref)) { |
if (untie(%$hashref)) { |
&Reply($client, "ok\n", $userinput); |
&Reply( $client, "ok\n", $userinput); |
} else { |
} else { |
&Failure( $client, "error: ".($!+0) |
&Failure($client, "error: ".($!+0) |
." untie(GDBM) Failed ". |
." untie(GDBM) Failed ". |
"while attempting courseidput\n", $userinput); |
"while attempting courseidput\n", $userinput); |
} |
} |
} else { |
} else { |
&Failure( $client, "error: ".($!+0) |
&Failure($client, "error: ".($!+0) |
." tie(GDBM) Failed ". |
." tie(GDBM) Failed ". |
"while attempting courseidput\n", $userinput); |
"while attempting courseidput\n", $userinput); |
} |
} |
|
|
|
|
return 1; |
return 1; |
} |
} |
Line 3781 sub process_request {
|
Line 3844 sub process_request {
|
$userinput = decipher($userinput); |
$userinput = decipher($userinput); |
$wasenc=1; |
$wasenc=1; |
if(!$userinput) { # Cipher not defined. |
if(!$userinput) { # Cipher not defined. |
&Failure($client, "error: Encrypted data without negotated key"); |
&Failure($client, "error: Encrypted data without negotated key\n"); |
return 0; |
return 0; |
} |
} |
} |
} |
Line 4989 sub validate_user {
|
Line 5052 sub validate_user {
|
# At the end of this function. I'll ensure that it's not still that |
# At the end of this function. I'll ensure that it's not still that |
# value so we don't just wind up returning some accidental value |
# value so we don't just wind up returning some accidental value |
# as a result of executing an unforseen code path that |
# as a result of executing an unforseen code path that |
# did not set $validated. |
# did not set $validated. At the end of valid execution paths, |
|
# validated shoule be 1 for success or 0 for failuer. |
|
|
my $validated = -3.14159; |
my $validated = -3.14159; |
|
|
Line 5077 sub validate_user {
|
Line 5141 sub validate_user {
|
# |
# |
|
|
unless ($validated != -3.14159) { |
unless ($validated != -3.14159) { |
die "ValidateUser - failed to set the value of validated"; |
# I >really really< want to know if this happens. |
|
# since it indicates that user authentication is badly |
|
# broken in some code path. |
|
# |
|
die "ValidateUser - failed to set the value of validated $domain, $user $password"; |
} |
} |
return $validated; |
return $validated; |
} |
} |